https://bugzilla.novell.com/show_bug.cgi?id=212586 Summary: mklost+found: *** buffer overflow detected *** Product: SUSE Linux 10.1 Version: Final Platform: x86-64 OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: koenig@linux.de QAContact: qa@suse.de CC: koenig@science-computing.de trying to re-create directory lost+found on a ext3 fs breaks on 10.1+YOU AMD64: root@os2 fs2 # rpm -qf /usr/sbin/mklost+found e2fsprogs-1.38-25 root@os2 fs2 # df -T . Filesystem Type 1K-blocks Used Available Use% Mounted on /dev/sdb1 ext3 141122196 98992444 34961152 74% /net/os2/fs2 root@os2 fs2 # mklost+found mklost+found 1.38 (30-Jun-2005) *** buffer overflow detected ***: mklost+found terminated ======= Backtrace: ========= /lib64/libc.so.6(__chk_fail+0x2f)[0x2ae0a47d4ebf] /lib64/libc.so.6[0x2ae0a47d43f9] /lib64/libc.so.6(_IO_default_xsputn+0x89)[0x2ae0a476dc59] /lib64/libc.so.6(_IO_vfprintf+0x1497)[0x2ae0a4746077] /lib64/libc.so.6(__vsprintf_chk+0x9d)[0x2ae0a47d449d] /lib64/libc.so.6(__sprintf_chk+0x80)[0x2ae0a47d43e0] mklost+found[0x400aac] /lib64/libc.so.6(__libc_start_main+0xf4)[0x2ae0a4721154] mklost+found[0x400949] ======= Memory map: ======== 00400000-00401000 r-xp 00000000 08:01 59743129 /usr/sbin/mklost+found 00501000-00502000 rw-p 00001000 08:01 59743129 /usr/sbin/mklost+found 00502000-00523000 rw-p 00502000 00:00 0 [heap] 2ae0a45e7000-2ae0a4602000 r-xp 00000000 08:01 6164717 /lib64/ld-2.4.so 2ae0a4602000-2ae0a4603000 rw-p 2ae0a4602000 00:00 0 2ae0a4623000-2ae0a4624000 rw-p 2ae0a4623000 00:00 0 2ae0a4624000-2ae0a4657000 r--p 00000000 08:01 42205643 /usr/lib/locale/de_DE/LC_CTYPE 2ae0a4702000-2ae0a4704000 rw-p 0001b000 08:01 6164717 /lib64/ld-2.4.so 2ae0a4704000-2ae0a482a000 r-xp 00000000 08:01 6164730 /lib64/libc-2.4.so 2ae0a482a000-2ae0a492a000 ---p 00126000 08:01 6164730 /lib64/libc-2.4.so 2ae0a492a000-2ae0a492d000 r--p 00126000 08:01 6164730 /lib64/libc-2.4.so 2ae0a492d000-2ae0a492f000 rw-p 00129000 08:01 6164730 /lib64/libc-2.4.so 2ae0a492f000-2ae0a4935000 rw-p 2ae0a492f000 00:00 0 2ae0a4935000-2ae0a4942000 r-xp 00000000 08:01 6177261 /lib64/libgcc_s.so.1 2ae0a4942000-2ae0a4a41000 ---p 0000d000 08:01 6177261 /lib64/libgcc_s.so.1 2ae0a4a41000-2ae0a4a42000 rw-p 0000c000 08:01 6177261 /lib64/libgcc_s.so.1 7fff064ad000-7fff064c3000 rw-p 7fff064ad000 00:00 0 [stack] ffffffffff600000-ffffffffffe00000 ---p 00000000 00:00 0 [vdso] Aborted (core dumped) root@os2 fs2 # gdb /usr/sbin/mklost+found core Core was generated by `/usr/sbin/mklost+found'. Program terminated with signal 6, Aborted. Reading symbols from /lib64/libc.so.6...(no debugging symbols found)...done. Loaded symbols for /lib64/libc.so.6 Reading symbols from /lib64/ld-linux-x86-64.so.2...(no debugging symbols found)...done. Loaded symbols for /lib64/ld-linux-x86-64.so.2 Reading symbols from /lib64/libgcc_s.so.1...(no debugging symbols found)...done. Loaded symbols for /lib64/libgcc_s.so.1 #0 0x00002b1b7a729aa5 in raise () from /lib64/libc.so.6 (gdb) where #0 0x00002b1b7a729aa5 in raise () from /lib64/libc.so.6 #1 0x00002b1b7a72ae60 in abort () from /lib64/libc.so.6 #2 0x00002b1b7a76036b in __libc_message () from /lib64/libc.so.6 #3 0x00002b1b7a7caebf in __chk_fail () from /lib64/libc.so.6 #4 0x00002b1b7a7ca3f9 in _IO_str_chk_overflow () from /lib64/libc.so.6 #5 0x00002b1b7a763c59 in _IO_default_xsputn_internal () from /lib64/libc.so.6 #6 0x00002b1b7a73c077 in vfprintf () from /lib64/libc.so.6 #7 0x00002b1b7a7ca49d in __vsprintf_chk () from /lib64/libc.so.6 #8 0x00002b1b7a7ca3e0 in __sprintf_chk () from /lib64/libc.so.6 #9 0x0000000000400aac in ?? () #10 0x00002b1b7a717154 in __libc_start_main () from /lib64/libc.so.6 #11 0x0000000000400949 in ?? () #12 0x00007fff304c9108 in ?? () #13 0x0000000000000000 in ?? () (gdb) q root@os2 fs2 # strace /usr/sbin/mklost+found .. stat("lost+found", {st_mode=S_IFDIR|0700, st_size=28672, ...}) = 0 creat("lost+found/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx97", 0644) = 3 close(3) = 0 stat("lost+found", {st_mode=S_IFDIR|0700, st_size=28672, ...}) = 0 creat("lost+found/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx98", 0644) = 3 close(3) = 0 stat("lost+found", {st_mode=S_IFDIR|0700, st_size=28672, ...}) = 0 creat("lost+found/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx99", 0644) = 3 close(3) = 0 stat("lost+found", {st_mode=S_IFDIR|0700, st_size=28672, ...}) = 0 open("/dev/tty", O_RDWR|O_NONBLOCK|O_NOCTTY) = 3 writev(3, [{"*** buffer overflow detected ***"..., 34}, {"/usr/sbin/mklost+found", 22}, {" terminated\n", 12}], 3) = 68 open("/etc/ld.so.cache", O_RDONLY) = 4 .. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.